Edge-Core ECS2100-52T User manual

CLI Reference Guide

www.edge-core.com

ECS2110-26T

26-Port Web-smart Pro

10G Ethernet Switch

ECS2100-52T

52-Port Web-smart Pro

Gigabit Ethernet Switch

Software Release v1.2.60.192

CLI Reference Guide

ECS2110-26T Gigabit Ethernet Switch

Web-smart Pro 10G Ethernet Switch

with 24 10/100/1000BASE-T (RJ-45) Ports

and 2 10G SFP Ports

ECS2100-52T Gigabit Ethernet Switch

Web-smart Pro Gigabit Ethernet Switch

with 48 10/100/1000BASE-T (RJ-45) Ports

and 4 Gigabit SFP Ports

E082020-CS-R04

– 3 –

How to Use This Guide

This guide includes detailed information on the switch software, including how to

operate and use the management functions of the switch. To deploy this switch

effectively and ensure trouble-free operation, you should first read the relevant

sections in this guide so that you are familiar with all of its software features.

Who Should Read This

Guide?

This guide is for network administrators who are responsible for operating and

maintaining network equipment. The guide assumes a basic working knowledge of

LANs (Local Area Networks), the Internet Protocol (IP), and Simple Network

Management Protocol (SNMP).

How This Guide is

Organized

This guide describes the switch’s command line interface (CLI). For more detailed

information on the switch’s key features or information about the web browser

management interface refer to the Web Management Guide.

The guide includes these sections:

◆ Section I “Getting Started” — Includes information on initial configuration.

◆ Section II “Command Line Interface” — Includes all management options

available through the CLI.

◆ Section III “Appendices” — Includes information on troubleshooting switch

management access.

This guide focuses on switch software configuration through the CLI.

For information on how to manage the switch through the Web management

interface, see the following guide:

Web Management Guide

For information on how to install the switch, see the following guide:

Installation Guide

For all safety information and regulatory statements, see the following documents:

Quick Start Guide

Safety and Regulatory Information

How to Use This Guide

– 4 –

Conventions The following conventions are used throughout this guide to show information:

Note:

Emphasizes important information or calls your attention to related features

or instructions.

Caution:

Alerts you to a potential hazard that could cause loss of data, or damage

the system or equipment.

Documentation

Notice

This documentation is provided for general information purposes only. If any

product feature details in this documentation conflict with the product datasheet,

refer to the datasheet for the latest information.

Revision History This section summarizes the changes in each revision of this guide.

Revision Date Change Description

v1.2.60.192 08/2020 Updated support for port license, See "Installing a Port License File"

on page 53.

v1.2.37.192 10/2019 Added

◆

"show ntp status" on page 144

◆

"show ntp statistics peer" on page 145

◆

"show ntp peer-status" on page 145

◆

RIP commands. See "Routing Information Protocol (RIP)" on

page 653.

◆

"show ip route database" on page 652

◆

"show ip route summary" on page 653

◆

"show ip traffic" on page 651

Updated

◆

SSH commands. See "Secure Shell" on page 237.

◆

Default for "port channel load-balance" on page 382

◆

"ntp server" on page 143

◆

"exec-timeout" on page 117

◆

"ntp authentication-key" on page 141

◆

"reload (Global Configuration)" on page 80

Removed

◆

Command “show license file”

◆

Command “ip ssh server-key size”

◆

ERPS commands

v1.1.10.171 01/2019 Updated to correct errors

v1.1.10.171 01/2017 Initial release

– 5 –

Contents

How to Use This Guide 3

Contents 5

Tables 31

Section I Getting Started 37

1 Initial Switch Configuration 39

Connecting to the Switch 39

Configuration Options 39

Connecting to the Console Port 40

Logging Onto the Command Line Interface 41

Setting Passwords 41

Remote Connections 42

Configuring the Switch for Remote Management 42

Using the Network Interface 42

Setting an IP Address 42

Enabling SNMP Management Access 48

Managing System Files 50

Upgrading the Operation Code 51

Saving or Restoring Configuration Settings 51

Installing a Port License File 53

Automatic Installation of Operation Code and Configuration Settings 54

Downloading Operation Code from a File Server 54

Specifying a DHCP Client Identifier 58

Downloading a Configuration File and Other Parameters from a DHCP Server 58

Setting the System Clock 61

Setting the Time Manually 61

Configuring SNTP 62

Contents

– 6 –

Configuring NTP 62

Section II Command Line Interface 65

2 Using the Command Line Interface 67

Accessing the CLI 67

Console Connection 67

Telnet Connection 68

Entering Commands 69

Keywords and Arguments 69

Minimum Abbreviation 69

Command Completion 69

Getting Help on Commands 70

Partial Keyword Lookup 71

Negating the Effect of Commands 72

Using Command History 72

Understanding Command Modes 72

Exec Commands 72

Configuration Commands 73

Command Line Processing 75

Showing Status Information 75

CLI Command Groups 76

3 General Commands 79

prompt 79

reload (Global Configuration) 80

enable 81

quit 82

show history 82

configure 83

disable 84

reload (Privileged Exec) 84

show reload 85

end 85

exit 85

Contents

– 7 –

4 System Management Commands 87

Device Designation 87

hostname 88

System Status 88

show access-list tcam-utilization 89

show memory 90

show process cpu 91

show process cpu guard 91

show process cpu task 92

show running-config 94

show startup-config 95

show system 96

show tech-support 97

show users 98

show version 99

show watchdog 99

watchdog software 100

Fan Control 100

fan-speed force-full 100

Frame Size 101

jumbo frame 101

File Management 102

General Commands 103

boot system 103

copy 104

delete 108

dir 109

whichboot 110

Automatic Code Upgrade Commands 110

upgrade opcode auto 110

upgrade opcode path 111

upgrade opcode reload 112

show upgrade 113

TFTP Configuration Commands 113

ip tftp retry 113

Contents

– 8 –

ip tftp timeout 114

show ip tftp 114

Line 115

line 116

databits 116

exec-timeout 117

login 118

parity 119

password 119

password-thresh 120

silent-time 121

speed 122

stopbits 122

timeout login response 123

disconnect 123

terminal 124

show line 125

Event Logging 126

logging command 126

logging facility 127

logging history 127

logging host 128

logging on 129

logging trap 130

clear log 130

show log 131

show logging 132

SMTP Alerts 133

logging sendmail 134

logging sendmail destination-email 134

logging sendmail host 135

logging sendmail level 135

logging sendmail source-email 136

show logging sendmail 137

Time 137

Contents

– 9 –

SNTP Commands 138

sntp client 138

sntp poll 139

sntp server 139

show sntp 140

NTP Commands 141

ntp authenticate 141

ntp authentication-key 141

ntp client 142

ntp server 143

show ntp 144

show ntp status 144

show ntp statistics peer 145

show ntp peer-status 145

Manual Configuration Commands 146

clock summer-time (date) 146

clock summer-time (predefined) 147

clock summer-time (recurring) 148

clock timezone 150

calendar set 151

show calendar 151

Time Range 152

time-range 152

absolute 153

periodic 154

show time-range 155

Switch Clustering 155

cluster 156

cluster commander 157

cluster ip-pool 158

cluster member 158

rcommand 159

show cluster 160

show cluster members 160

show cluster candidates 160

Contents

– 10 –

5 SNMP Commands 163

General SNMP Commands 165

snmp-server 165

snmp-server community 165

snmp-server contact 166

snmp-server location 167

show snmp 167

SNMP Target Host Commands 168

snmp-server enable traps 168

snmp-server host 169

snmp-server enable port-traps link-up-down 171

snmp-server enable port-traps mac-notification 172

show snmp-server enable port-traps 172

SNMPv3 Commands 173

snmp-server engine-id 173

snmp-server group 174

snmp-server user 175

snmp-server view 177

show snmp engine-id 178

show snmp group 179

show snmp user 180

show snmp view 181

Notification Log Commands 181

nlm 181

snmp-server notify-filter 182

show nlm oper-status 184

show snmp notify-filter 184

Additional Trap Commands 184

memory 184

process cpu 185

process cpu guard 186

6 Remote Monitoring Commands 189

rmon alarm 190

rmon event 191

Contents

– 11 –

rmon collection history 192

rmon collection rmon1 193

show rmon alarms 194

show rmon events 194

show rmon history 195

show rmon statistics 195

7 Flow Sampling Commands 197

sflow owner 197

sflow polling instance 199

sflow sampling instance 200

show sflow 201

8 Authentication Commands 203

User Accounts and Privilege Levels 204

enable password 204

username 205

privilege 207

show privilege 207

Authentication Sequence 208

authentication enable 208

authentication login 209

RADIUS Client 210

radius-server acct-port 210

radius-server auth-port 211

radius-server host 211

radius-server key 212

radius-server retransmit 213

radius-server timeout 213

show radius-server 214

TACACS+ Client 214

tacacs-server host 215

tacacs-server key 215

tacacs-server port 216

tacacs-server retransmit 216

tacacs-server timeout 217

Contents

– 12 –

show tacacs-server 217

AAA 218

aaa accounting commands 219

aaa accounting dot1x 220

aaa accounting exec 221

aaa accounting update 222

aaa authorization commands 222

aaa authorization exec 223

aaa group server 224

server 225

accounting dot1x 225

accounting commands 226

accounting exec 226

authorization commands 227

authorization exec 228

show accounting 228

show authorization 229

Web Server 230

ip http authentication 231

ip http port 231

ip http server 232

ip http secure-port 232

ip http secure-server 233

Telnet Server 234

ip telnet max-sessions 235

ip telnet port 235

ip telnet server 236

telnet (client) 236

show ip telnet 237

Secure Shell 237

ip ssh authentication-retries 239

ip ssh server 240

ip ssh timeout 241

delete public-key 241

ip ssh crypto host-key generate 242

Contents

– 13 –

ip ssh crypto zeroize 242

ip ssh save host-key 243

show ip ssh 243

show public-key 244

show ssh 244

802.1X Port Authentication 245

General Commands 246

dot1x default 246

dot1x system-auth-control 247

Authenticator Commands 247

dot1x intrusion-action 247

dot1x max-reauth-req 248

dot1x max-req 248

dot1x operation-mode 249

dot1x port-control 250

dot1x re-authentication 250

dot1x timeout quiet-period 251

dot1x timeout re-authperiod 251

dot1x timeout supp-timeout 252

dot1x timeout tx-period 253

dot1x re-authenticate 253

Supplicant Commands 254

dot1x timeout auth-period 254

dot1x timeout held-period 254

Information Display Commands 255

show dot1x 255

Management IP Filter 257

management 257

show management 258

9 General Security Measures 261

Port Security 262

mac-learning 262

port security 263

show port security 265

Contents

– 14 –

Network Access (MAC Address Authentication) 267

network-access aging 267

network-access mac-filter 268

mac-authentication reauth-time 269

network-access dynamic-qos 270

network-access dynamic-vlan 271

network-access guest-vlan 272

network-access max-mac-count 272

network-access mode mac-authentication 273

network-access port-mac-filter 274

mac-authentication intrusion-action 275

mac-authentication max-mac-count 275

clear network-access 276

show network-access 276

show network-access mac-address-table 277

show network-access mac-filter 278

Web Authentication 278

web-auth login-attempts 279

web-auth quiet-period 280

web-auth session-timeout 280

web-auth system-auth-control 281

web-auth 281

web-auth re-authenticate (Port) 282

web-auth re-authenticate (IP) 282

show web-auth 283

show web-auth interface 283

show web-auth summary 284

DHCPv4 Snooping 284

ip dhcp snooping 285

ip dhcp snooping information option 287

ip dhcp snooping information option encode no-subtype 288

ip dhcp snooping information option remote-id 290

ip dhcp snooping information option tr101 board-id 291

ip dhcp snooping information policy 291

ip dhcp snooping verify mac-address 292

Contents

– 15 –

ip dhcp snooping vlan 293

ip dhcp snooping information option circuit-id 294

ip dhcp snooping max-number 296

ip dhcp snooping trust 296

clear ip dhcp snooping binding 297

clear ip dhcp snooping database flash 297

ip dhcp snooping database flash 298

show ip dhcp snooping 298

show ip dhcp snooping binding 299

IPv4 Source Guard 299

ip source-guard binding 300

ip source-guard 302

ip source-guard max-binding 303

ip source-guard mode 304

clear ip source-guard binding blocked 305

show ip source-guard 305

show ip source-guard binding 306

ARP Inspection 307

ip arp inspection 308

ip arp inspection filter 309

ip arp inspection log-buffer logs 310

ip arp inspection validate 311

ip arp inspection vlan 312

ip arp inspection limit 313

ip arp inspection trust 313

show ip arp inspection configuration 314

show ip arp inspection interface 314

show ip arp inspection log 315

show ip arp inspection statistics 315

show ip arp inspection vlan 315

Denial of Service Protection 316

dos-protection echo-chargen 316

dos-protection smurf 317

dos-protection tcp-flooding 317

dos-protection tcp-null-scan 318

Contents

– 16 –

dos-protection tcp-syn-fin-scan 318

dos-protection tcp-xmas-scan 319

dos-protection udp-flooding 319

dos-protection win-nuke 320

show dos-protection 320

Port-based Traffic Segmentation 321

traffic-segmentation 321

traffic-segmentation session 322

traffic-segmentation uplink/downlink 323

traffic-segmentation uplink-to-uplink 324

show traffic-segmentation 325

10 Access Control Lists 327

IPv4 ACLs 327

access-list ip 328

permit, deny (Standard IP ACL) 328

permit, deny (Extended IPv4 ACL) 329

ip access-group 332

show ip access-group 333

show ip access-list 333

IPv6 ACLs 334

access-list ipv6 334

permit, deny (Standard IPv6 ACL) 335

permit, deny (Extended IPv6 ACL) 336

ipv6 access-group 339

show ipv6 access-group 339

show ipv6 access-list 340

MAC ACLs 340

access-list mac 341

permit, deny (MAC ACL) 341

mac access-group 344

show mac access-group 345

show mac access-list 345

ARP ACLs 346

access-list arp 346

Contents

– 17 –

permit, deny (ARP ACL) 347

show access-list arp 348

ACL Information 348

clear access-list hardware counters 349

show access-group 349

show access-list 350

11 Interface Commands 351

Interface Configuration 352

interface 352

capabilities 353

description 354

flowcontrol 355

history 356

media-type 356

negotiation 357

shutdown 358

speed-duplex 358

clear counters 359

show interfaces brief 360

show interfaces counters 361

show interfaces history 364

show interfaces status 366

show interfaces switchport 367

Transceiver Threshold Configuration 368

transceiver-monitor 368

transceiver-threshold-auto 369

transceiver-threshold current 369

transceiver-threshold rx-power 370

transceiver-threshold temperature 371

transceiver-threshold tx-power 372

transceiver-threshold voltage 373

show interfaces transceiver 374

show interfaces transceiver-threshold 375

Contents

– 18 –

Cable Diagnostics 376

test cable-diagnostics 376

show cable-diagnostics 377

Power Savings 378

power-save 378

show power-save 379

12 Link Aggregation Commands 381

Manual Configuration Commands 382

port channel load-balance 382

channel-group 384

Dynamic Configuration Commands 385

lacp 385

lacp admin-key (Ethernet Interface) 386

lacp port-priority 387

lacp system-priority 388

lacp admin-key (Port Channel) 389

lacp timeout 390

Trunk Status Display Commands 391

show lacp 391

show port-channel load-balance 394

13 Port Mirroring Commands 395

Local Port Mirroring Commands 395

port monitor 395

show port monitor 396

RSPAN Mirroring Commands 397

rspan source 399

rspan destination 400

rspan remote vlan 401

no rspan session 402

show rspan 403

14 Congestion Control Commands 405

Rate Limit Commands 405

rate-limit 406

Contents

– 19 –

Storm Control Commands 407

switchport packet-rate 407

15 Loopback Detection Commands 409

loopback-detection 410

loopback-detection action 410

loopback-detection recover-time 411

loopback-detection transmit-interval 412

loopback detection trap 412

loopback-detection release 413

show loopback-detection 413

16 Address Table Commands 415

mac-address-table aging-time 415

mac-address-table static 416

clear collision-mac-address-table 417

clear mac-address-table dynamic 417

show collision-mac-address-table 417

show mac-address-table 418

show mac-address-table aging-time 419

show mac-address-table count 419

17 Spanning Tree Commands 421

spanning-tree 422

spanning-tree cisco-prestandard 423

spanning-tree forward-time 423

spanning-tree hello-time 424

spanning-tree max-age 425

spanning-tree mode 425

spanning-tree mst configuration 427

spanning-tree pathcost method 427

spanning-tree priority 428

spanning-tree system-bpdu-flooding 429

spanning-tree tc-prop 429

spanning-tree transmission-limit 430

max-hops 431

Contents

– 20 –

mst priority 431

mst vlan 432

name 433

revision 433

spanning-tree bpdu-filter 434

spanning-tree bpdu-guard 435

spanning-tree cost 436

spanning-tree edge-port 437

spanning-tree link-type 438

spanning-tree loopback-detection 438

spanning-tree loopback-detection action 439

spanning-tree loopback-detection release-mode 440

spanning-tree loopback-detection trap 441

spanning-tree mst cost 441

spanning-tree mst port-priority 442

spanning-tree port-bpdu-flooding 443

spanning-tree port-priority 443

spanning-tree root-guard 444

spanning-tree spanning-disabled 445

spanning-tree tc-prop-stop 445

spanning-tree loopback-detection release 446

spanning-tree protocol-migration 447

show spanning-tree 447

show spanning-tree mst configuration 450

show spanning-tree tc-prop 450

18 VLAN Commands 451

Editing VLAN Groups 451

vlan database 452

vlan 452

Configuring VLAN Interfaces 453

interface vlan 454

switchport acceptable-frame-types 455

switchport allowed vlan 455

switchport ingress-filtering 457

Page is loading ...

Edge-Core ECS2100-52T, ECS2110-26T User manual

Related papers

Other documents